8 Oct
2015
8 Oct
'15
4:52 a.m.
Hi,
Like lots of people, we've been hit with the changes to TLS support in IOS9. I've upgraded to FR2.2.9 (we're a moderate sized ISP and can't upgrade to 3.x in a hurry) but there's still little change to the matter.
no.....theres no change - its not TLS 1.2 yet - they pulled back
Our configuration is an proxy configuration which forwards normal (non-EAP) RADIUS to our customer facing radius platform. The difference that we're seeing between an 8.x connection attempt (which works fine) and a 9.x connection attempt is that we don't see the MSCHAP attributes passed through in the request.
correct...because thats the change - they now send EAP-MSCHAPv2 in the inner. alan